$ rpki-client -vvf rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF9C655E7A4711EF9C7A0E5AC4F9AE02.roa File: BF9C655E7A4711EF9C7A0E5AC4F9AE02.roa (raw, json) Hash identifier: CH+P1DrpmZpd0ULB0EGA0EwiZi1YaDYI+NO8M1bemyE= Subject key identifier: 82:DC:52:6E:65:BC:07:2A:BC:1B:0D:9D:E2:81:94:2E:9F:DC:5C:49 Certificate issuer: /CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Certificate serial: 296F Authority key identifier: 7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF9C655E7A4711EF9C7A0E5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:36:25 +0000 ROA not before: Sat 10 Jan 2026 16:12:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141718 IP address blocks: 43.250.124.0/24 maxlen: 24 43.250.125.0/24 maxlen: 24 43.250.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10607 (0x296f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F13B9, serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Validity Not Before: Jan 10 16:12:43 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48728-3604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:a6:45:8e:fd:2d:ae:7c:11:5e:65:b5:01: ff:e9:85:f6:15:bb:3f:dc:2a:92:e2:79:11:7a:90: f4:91:1c:49:9a:15:3c:fa:d2:ff:a6:87:0d:f2:e5: 90:ca:85:c1:53:57:33:63:dc:9b:bd:35:e5:5c:c3: 70:58:23:41:c0:c6:0e:79:5b:c2:40:52:e9:a5:19: 43:c9:2b:2a:ab:a9:87:32:66:36:c2:c7:68:ec:f7: 29:58:41:80:5b:31:12:d6:97:40:d6:59:fc:44:1b: f8:bd:23:23:89:a4:30:33:f4:77:ae:1c:4c:b1:55: 56:61:35:df:65:74:e3:db:aa:5d:80:fb:9e:e9:f1: c2:52:08:e7:b0:90:0d:25:86:23:1a:cd:f5:31:2f: 46:4b:5c:16:b7:65:0a:4e:59:e2:1e:61:ce:82:b2: 52:cd:fb:20:42:64:e7:3b:c1:da:c4:cc:7d:2d:93: 5d:be:84:7e:17:a4:f9:d0:3c:9c:78:0d:c8:37:5e: 81:24:ac:b6:cd:c6:24:75:01:f7:9d:e4:7b:0d:17: 29:12:1d:e3:68:d7:ee:9e:42:d3:69:4f:e7:98:f2: 7e:0f:f6:64:fb:9e:fe:51:f7:de:cf:3c:76:71:69: 0b:4d:67:65:ab:2b:5a:04:cd:85:72:6a:03:7c:72: 18:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:DC:52:6E:65:BC:07:2A:BC:1B:0D:9D:E2:81:94:2E:9F:DC:5C:49 X509v3 Authority Key Identifier: keyid:7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/BF9C655E7A4711EF9C7A0E5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.250.124.0/23 43.250.127.0/24 Signature Algorithm: sha256WithRSAEncryption 44:ec:a6:68:39:b3:f0:6f:90:73:fa:71:26:23:09:1c:c9:9a: 1e:e9:41:e5:71:2f:a4:90:7a:a0:08:4e:5c:9a:cc:7c:f1:40: f2:c1:be:80:d7:6a:6e:31:01:30:72:9b:3a:30:41:0f:5e:86: 7a:3f:7b:80:a1:b5:3b:03:90:65:71:b2:81:92:c1:64:34:81: 00:5c:72:d3:09:f3:02:4a:23:0b:54:24:94:34:78:65:03:7b: 04:7f:5c:f6:a8:46:13:96:69:a2:b0:39:02:2a:fc:07:a8:7e: 83:e9:d6:d6:87:1f:18:23:03:de:a8:2e:43:c4:d6:f9:7c:3a: 98:5f:02:66:c3:f2:66:7a:a0:47:02:fc:a2:8a:e9:87:6b:c1: f3:50:32:9b:41:25:08:4d:e1:de:7b:cf:81:70:f0:a9:a1:a5: 87:a9:cb:e5:e4:14:02:f8:23:5d:02:70:05:08:e8:0d:8a:31: 10:a8:25:c4:75:d5:05:03:08:fb:ad:b0:c5:9e:50:63:fa:32: be:24:5a:2d:44:ea:9a:f7:01:52:ec:34:9c:80:09:ad:8b:ec: 31:01:af:2f:6b:6c:20:12:47:f7:f9:a9:d4:15:2f:4d:cd:51: 91:3b:46:8a:a7:43:0b:a7:1e:3f:c5:a9:31:2f:0a:30:00:b3: a5:bb:89:db -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICKW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzQjkxMTAvBgNVBAUTKDdFQUMwQzJDQjI3QTMwQTEzOEVFNDc1QjA3RkU5N0U4 RTkzM0ZEQ0EwHhcNMjYwMTEwMTYxMjQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODcyOC0zNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38emRY79La58EV5ltQH/6YX2Fbs/3CqS4nkRepD0kRxJmhU8+tL/pocN8uWQ yoXBU1czY9ybvTXlXMNwWCNBwMYOeVvCQFLppRlDySsqq6mHMmY2wsdo7PcpWEGA WzES1pdA1ln8RBv4vSMjiaQwM/R3rhxMsVVWYTXfZXTj26pdgPue6fHCUgjnsJAN JYYjGs31MS9GS1wWt2UKTlniHmHOgrJSzfsgQmTnO8HaxMx9LZNdvoR+F6T50Dyc eA3IN16BJKy2zcYkdQH3neR7DRcpEh3jaNfunkLTaU/nmPJ+D/Zk+57+Uffezzx2 cWkLTWdlqytaBM2FcmoDfHIY4wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFILcUm5l vAcqvBsNneKBlC6f3FxJMB8GA1UdIwQYMBaAFH6sDCyyejChOO5HWwf+l+jpM/3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTNCOS8xODk3QjI1MjlG OUQxMUU0OTYxOTUzMkRDNEY5QUUwMi9mcXdNTExKNk1LRTQ3a2RiQl82WDZPa3pf Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Zxd01MTEo2TUtFNDdrZGJCXzZYNk9rel9jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzQjkvMTg5N0IyNTI5RjlEMTFFNDk2MTk1MzJEQzRGOUFFMDIvQkY5QzY1NUU3 QTQ3MTFFRjlDN0EwRTVBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBK/p8AwQAK/p/MA0GCSqGSIb3DQEBCwUAA4IBAQBE7KZoObPwb5Bz +nEmIwkcyZoe6UHlcS+kkHqgCE5cmsx88UDywb6A12puMQEwcps6MEEPXoZ6P3uA obU7A5BlcbKBksFkNIEAXHLTCfMCSiMLVCSUNHhlA3sEf1z2qEYTlmmisDkCKvwH qH6D6dbWhx8YIwPeqC5DxNb5fDqYXwJmw/JmeqBHAvyiiumHa8HzUDKbQSUITeHe e8+BcPCpoaWHqcvl5BQC+CNdAnAFCOgNijEQqCXEddUFAwj7rbDFnlBj+jK+JFot ROqa9wFS7DScgAmti+wxAa8va2wgEkf3+anUFS9NzVGRO0aKp0MLpx4/xakxLwow ALOlu4nb -----END CERTIFICATE-----Generated at Mon Mar 2 07:50:19 2026 by rpki-client